An update for kernel is now available for Red Hat Enterprise Linux 6.7Extended Update Support.

Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.

Security Fix(es):

* A flaw was found in the Linux networking subsystem where a local attackerwith CAP_NET_ADMIN capabilities could cause an out-of-bounds memory accessby creating a smaller-than-expected ICMP header and sending to itsdestination via sendto(). (CVE-2016-8399, Moderate)

Enhancement(s):

* Previously, the mpt3sas driver incorrectly checked the Transport LayerRetries (TLR) state even on Redundant Array Of Independent Discs (RAID)devices. Consequently, a kernel panic occurred when mpt3sas attempted toread from the RAID devices. With this update, mpt3sas has been fixed tocheck the TLR state only for non-RAID devices, and the kernel no longerpanics under the described circumstances. (BZ#1427459)

4. Solution:

For details on how to apply this update, which includes the changesdescribed in this advisory, refer to: